CVE-2024-34990 | Help Desk Module up to 2.4.0 on PrestaShop replyTicket unrestricted upload

Inserito da Angelo Barbosa | Giu 19, 2024 | CVE

A vulnerability classified as critical was found in Help Desk Module up to 2.4.0 on PrestaShop. Affected by this vulnerability is the function HelpdeskHelpdeskModuleFrontController::submitTicket/HelpdeskHelpdeskModuleFrontController::replyTicket. The manipulation leads to unrestricted upload.

This vulnerability is known as CVE-2024-34990. The attack can be launched remotely. There is no exploit available.

CVE-2024-34990 | Help Desk Module up to 2.4.0 on PrestaShop replyTicket unrestricted upload

Post correlati

CVE-2024-45792 | MantisBT up to 2.26.3 POST Request information disclosure

CVE-2024-40932 | Linux Kernel up to 6.9.5 get_modes memory leak

CVE-2023-7139 | code-projects Client Details System 1.0 HTTP POST Request /admin/regester.php fname/lname/email/contact sql injection

CVE-2024-4860 | RSS Aggregator Plugin up to 4.23.8 on WordPress GET Parameter notice_id cross site scripting